Univention Bugzilla – Bug 55198
zlib: Multiple issues (5.0)
Last modified: 2022-09-13 17:50:24 CEST
New Debian zlib 1:1.2.11.dfsg-1+deb10u2 fixes: This update addresses the following issue: * a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field (CVE-2022-37434)
--- mirror/ftp/pool/main/z/zlib/zlib_1.2.11.dfsg-1+deb10u1.dsc +++ apt/ucs_5.0-0-errata5.0-2/source/zlib_1.2.11.dfsg-1+deb10u2.dsc @@ -1,3 +1,9 @@ +1:1.2.11.dfsg-1+deb10u2 [Sun, 11 Sep 2022 10:49:32 +0200] Emilio Pozuelo Monfort <pochu@debian.org>: + + * Non-maintainer upload by the LTS Team. + * CVE-2022-37434: heap buffer overflow via large gzip header extra + field (Closes: #1016710). + 1:1.2.11.dfsg-1+deb10u1 [Mon, 28 Mar 2022 16:54:02 +0200] Salvatore Bonaccorso <carnil@debian.org>: * Non-maintainer upload by the Security Team. <http://piuparts.knut.univention.de/5.0-2/#5344639393781271005>
OK: yaml OK: announce_errata OK: patch OK: piuparts [5.0-2] 8dc0a04ff0 Bug #55198: zlib 1:1.2.11.dfsg-1+deb10u2 doc/errata/staging/zlib.yaml | 13 +++++++++++++ 1 file changed, 13 insertions(+)
<https://errata.software-univention.de/#/?erratum=5.0x422>